Site Map - Risk Management

Vulnerability Management

- Overall, this book provides excellent guidance for the information security practitioner and the network security engineer, as well as those who need an understanding of the strategic significance of vulnerabilities and reasons for their control.

Mission: Intangible: Managing Risk and Reputation To Create Enterprise Value

- This is one of those “must read” books that forward-looking security professionals will quickly recognize as a “value add.”

Experts Say Need-to-Know Should Trump Security Clearance

- Implementing a policy where need-to-know trumps security clearance would help avoid incidents like Cablegate.

Protecting the Smart Grid

- As our utility infrastructure gets smarter, so must our ways of protecting its many vulnerabilities from hackers and other ne’er-do-wells.

Rethinking Risk: How Companies Sabotage Themselves and What They Must Do Differently

- The ambitious title of Rethinking Risk is overly broad, to say the least reviewer Ross Johnson says.

How Risky Is It, Really? Why Our Fears Don’t Always Match the Facts

- David Ropeik, author of 2002’s Risk! A Practical Guide for Deciding What’s Really Safe and What’s Really Dangerous in the World Around You, looks more closely at the question posed in the title.

Handbook of Violence Risk Assessment

- Although well written and current, the book delves deep into psychology, likely too deep for the typical security practitioner.  

Urban Area Perspective - Portland

- Security Management interviews Carmen Merlo, director of the Portland Office of Emergency Management.

Kodak Develops Risk Framework

- Executives at Eastman Kodak use a new tool to visually display risk, making threats easier to understand.

BP Anniversary: Amid Growing Exploration Risks, "Don't Do Something Stupid"

- Veterans and observers of the response are placing the incident’s consequences in perspective and warning against giving lip service to issues of safety and risk.

What We Can Learn From Arizona's Loss

- We aren't doing the mentally ill any favors by letting them deteriorate unassisted.   -----------------------------------------------------------------------------------

Risk Analysis and Security Countermeasure Selection

- Thomas L. Norman offers a do-it-yourself guide to risk analysis for those with time but not a lot of money.

Security Risk Management Body of Knowledge

- Talbot and Jakeman's text on enterprise security risk management correctly emphasizes that security must transistion from a cost center to a profit center.

Beyond Print

SM Online

See all the latest links and resources that supplement the current issue of Security Management magazine.